Hacking Group Claims Theft of 12.4M CarGurus Records
TL;DR
Hacking group ShinyHunters claims to have stolen and published 12.4 million records from CarGurus, including personal data like names and addresses. The breach was reported by multiple media outlets and confirmed on data breach notification sites.
Source: PYMNTS
Customer data allegedly stolen from car shopping site CarGurus (NASDAQ: CARG) was posted by a hacking group, according to multiple media reports. Bleeping Computer reported that an extortion group called ShinyHunters claimed Feb. 21 that it had 12.4 million records from CarGurus. The group later published the data, according to the report. TechCrunch also reported on the data breach. A post on the Have I Been Pwned data breach notification site said the data compromised in the incident includes names, physical addresses, email addresses, IP addresses and phone numbers. Boston, Mass.-based CarGurus, founded in 2006, calls itself the #1 most-visited digital auto platform in the U.S. The company serves 24,000 U.S. car dealers and has more than 1,200 global employees. Full Story